IETF Logo Mail Archive

[TLS]Re: Trust Anchor Negotiation Surveillance Concerns and Risks

Ilari Liusvaara <ilariliusvaara@welho.com> Sat, 20 July 2024 12:59 UTC

Return-Path: <ilariliusvaara@welho.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA108C14F683 for <tls@ietfa.amsl.com>; Sat, 20 Jul 2024 05:59:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m-US9buqxuG1 for <tls@ietfa.amsl.com>; Sat, 20 Jul 2024 05:59:29 -0700 (PDT)
Received: from welho-filter3.welho.com (welho-filter3b.welho.com [83.102.41.29]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98C38C14F617 for <tls@ietf.org>; Sat, 20 Jul 2024 05:59:29 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by welho-filter3.welho.com (Postfix) with ESMTP id AC852142B2 for <tls@ietf.org>; Sat, 20 Jul 2024 15:59:26 +0300 (EEST)
X-Virus-Scanned: Debian amavisd-new at pp.htv.fi
Received: from welho-smtp1.welho.com ([IPv6:::ffff:83.102.41.84]) by localhost (welho-filter3.welho.com [::ffff:83.102.41.25]) (amavisd-new, port 10024) with ESMTP id QC4HK830nIWp for <tls@ietf.org>; Sat, 20 Jul 2024 15:59:26 +0300 (EEST)
Received: from LK-Perkele-VII2 (78-27-96-203.bb.dnainternet.fi [78.27.96.203]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by welho-smtp1.welho.com (Postfix) with ESMTPSA id 5E89428B for <tls@ietf.org>; Sat, 20 Jul 2024 15:59:25 +0300 (EEST)
Date: Sat, 20 Jul 2024 15:59:25 +0300
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: TLS List <tls@ietf.org>
Message-ID: <Zpu0reBpH3dtFYdf@LK-Perkele-VII2.locald>
References: <CAD2nvsT4qWqudiv1C1wZn6rB4_s-9EDENq5TXEbxr_ygcMFjDQ@mail.gmail.com> <CAChr6Sw+gxK3dO29F9bsLTQReJz6LzT2hZb5O7LAXmKzQbKTSw@mail.gmail.com> <CACf5n7_29CNXLf+SmpKKOWkc_3Oi2BZqZ8irU+z=3btJns_1-Q@mail.gmail.com> <CAChr6SxJ3r88a4Aehv_5fsSWb1JApV6Lg4hfwdm0Oh5x04_shQ@mail.gmail.com> <479BA457-9001-4EBC-A84F-9E3EB71E809F@akamai.com> <CACsn0cmhsh-zeJOaa7xy_2crxgvhAF=nK9FqWxxf1dB2SMhMyQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <CACsn0cmhsh-zeJOaa7xy_2crxgvhAF=nK9FqWxxf1dB2SMhMyQ@mail.gmail.com>
Sender: ilariliusvaara@welho.com
Message-ID-Hash: 5XZFHNW42SSBBP6QLNMBAN4QEEBAHIWA
X-Message-ID-Hash: 5XZFHNW42SSBBP6QLNMBAN4QEEBAHIWA
X-MailFrom: ilariliusvaara@welho.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS]Re: Trust Anchor Negotiation Surveillance Concerns and Risks
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/d1pP9ZCUjhuifynp1i2C-uoufro>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

On Fri, Jul 19, 2024 at 09:39:32PM -0700, Watson Ladd wrote:
> On Fri, Jul 19, 2024, 8:58 PM Salz, Rich
> <rsalz=40akamai.com@dmarc.ietf.org> wrote:
> >
> > I’m a little skeptical of approaches that solve an entire problem
> > space with one architecture. I’m more skeptical of enough people
> > having the ability to read and understand the semantics of
> > several pages of JSON object descriptions. 

The TLS endpoints will not see that JSON. Good thing, as JSON is too
complex for TLS (even CBOR would be too complex).


> > Can we simplify things and solve just one problem?
> 
> Do that several times and you end up with the mess we have now, where
> the interplay of certificate serving and algorithm selection requires
> quite a dance to figure out, and is version dependent. Each additional
> factor to negotiate has to play in, and already assembling all the
> bits gets complicated.

Yes, if one drops usecases that are valuable to simplify stuff, later
adding mechanism for those usecases ends up more complex than if one
had just gone with the originally more complex solution.

And it might be worse than just supporting both: The features could
interact in bad ways. For example of bad interaction, certificate
compression versus certificate extensions.

But on the other side there is excessive complexity from trying to solve
too much (e.g, certificate policies). Or worse, complexity that does not
serve any actual purpose (e.g., differing representations of IDNs in
email certificates).


> On top of that if we want the CA ecosystem to evolve, we have to deal
> with different clients trusting different things. And there are not a
> whole lot of ways to solve that. Using that mechanism to say "here is
> the bundle of stuff I expect" is much cleaner.

Allowing various embedded and IoT stuff to migrate off of WebPKI would
be of immense value. Such stuff using WebPKI has been source of gigantic
amount of pain.




-Ilari

v2.37.1 | Report a Bug | By Email | System Status